Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/xiiLKk8EMtdjKO0J37FT6PjxpVw.roa
File: xiiLKk8EMtdjKO0J37FT6PjxpVw.roa (raw, json)
Hash identifier: dlvsUm3Kk6FJuam8OirxDN9B9S2gf25UHhMbPvelkfI=
Subject key identifier: C6:28:8B:2A:4F:04:32:D7:63:28:ED:09:DF:B1:53:E8:F8:F1:A5:5C
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 031C
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/xiiLKk8EMtdjKO0J37FT6PjxpVw.roa
Signing time: Tue 07 May 2024 15:55:03 +0000
ROA not before: Tue 07 May 2024 15:55:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 796 (0x31c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: May 7 15:55:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=C6288B2A4F0432D76328ED09DFB153E8F8F1A55C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1b:40:3a:5c:70:d2:61:11:9a:8e:04:10:2b:
19:62:93:d3:cf:ae:a3:d5:d9:94:c5:9d:34:7a:94:
1d:11:e2:ea:9e:7d:4a:8c:0c:41:87:8e:d1:66:55:
12:dc:9b:c5:bf:4d:6f:64:31:6c:e3:f5:e8:a0:c3:
6d:bc:63:31:49:3b:13:9b:ad:2e:35:03:57:2e:d5:
20:1c:3a:54:28:2a:15:4c:89:bd:72:2c:bd:9c:26:
f1:64:2a:27:88:8b:d8:54:2c:a5:b7:d1:08:05:57:
73:22:ec:68:f1:a4:9a:34:5e:6a:c2:d2:ef:04:de:
0e:89:4b:27:94:54:0b:d4:fa:f4:cf:19:5c:31:53:
6c:5e:24:9a:72:f5:37:ba:51:a8:89:3d:4b:ed:26:
c4:58:c8:8e:fc:fb:7a:3f:7f:18:17:85:29:aa:de:
03:73:bf:ab:bf:17:d1:96:bc:76:fe:33:a9:e8:ef:
f7:76:4c:4e:bb:5f:a3:b4:57:7d:23:b0:cf:0b:09:
4f:28:51:f2:25:fc:d8:8e:6f:68:6f:1a:13:58:ed:
9d:82:1a:52:62:a8:26:cd:49:6e:a8:5c:08:87:60:
32:d3:a9:5d:fc:6b:2b:79:98:03:bb:50:a6:05:94:
e8:2f:c8:9f:a1:5f:1a:41:0a:cf:f2:e0:22:ee:fe:
1f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:28:8B:2A:4F:04:32:D7:63:28:ED:09:DF:B1:53:E8:F8:F1:A5:5C
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/xiiLKk8EMtdjKO0J37FT6PjxpVw.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
38:2b:d5:58:f1:70:54:84:f9:6d:21:86:48:74:2e:ae:1a:9f:
4b:53:da:94:d3:1a:b0:1f:1d:ed:e6:da:52:ef:20:08:86:35:
a3:4b:06:03:01:c1:45:af:8a:c0:ec:69:87:71:0d:5f:d5:8e:
9c:74:8d:27:b5:2e:57:43:ce:c9:6e:20:e0:bd:ef:26:32:38:
4f:c2:c1:9c:cd:ab:c9:f3:5f:38:41:04:b7:9d:49:4f:d2:da:
8a:31:92:99:0e:7f:c3:d1:88:57:47:8a:8b:d0:3f:f6:82:2b:
55:b2:02:bf:30:1c:61:a9:a2:49:dd:cc:b4:17:5b:58:8d:7f:
db:4e:ac:d1:05:00:f4:1f:46:53:89:af:27:b4:b4:0e:e4:f5:
1d:0e:37:87:f3:6c:bd:88:49:57:b4:3b:52:26:bb:5f:c6:f9:
74:76:c0:f0:a5:94:b9:7f:16:09:49:8b:27:d7:9d:4d:d1:07:
36:9e:41:ab:04:82:a6:24:ef:e1:4b:88:3c:d4:dd:80:07:22:
9d:7e:a3:64:5a:d0:d6:06:d1:74:38:d7:6b:f9:13:d8:21:03:
cc:be:ed:fb:91:50:8b:f5:8a:31:3e:fc:da:81:aa:1d:ad:9c:
3c:4f:a9:b5:f5:71:3b:9a:bc:61:c4:6b:86:ad:e0:2e:4f:9a:
bd:66:d1:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:49:28 2024 by rpki-client on console-ams.rpki-client.org